2. Agenda
Slide Section
3 Why you need a MDM solution?
5 Gartner Magic Quadrant
7 Solution Strengths and Cautions
15 Solution Features Detailed Comparison
34 Akili’s MDM evaluation, step by step approach
35 Why Afaria is THE solution for SAP Customer?
36 Disclaimer
3. Why you need a MDM Solution:
• Newer mobile computing models are pushing the boundaries of security.
• The unprecedented growth in smartphones and tablets in the enterprise,
a strong trend toward the consumerization of IT and the revelation that
web 2.0 technologies are here to stay in the workplace, is putting
enterprise information technology under intense pressure.
• And even more pressure comes as IT organizations are expected to
manage and secure mobile devices faster than ever before while
becoming and staying compliant.
3
4. You need to secure your mobile devices now:
• What happen when the mobile device is lost/stolen?
• When an employee leave the company?
4
5. Advanced Device Management Functionalities:
• A defense contractor leverages MDM to disable
certain functions of the mobile phone:
When entering the building the Camera function is deactivated
and the Camera icon disappears from the Phone’s menu. It
reappears when leaving the premises.
• A delivery company, for safety reasons, disables the
texting functionality on the mobile devices of their
truck drivers when the phone is moving at a speed
greater than 10 mph.
5
7. Focus of this MDM solution comparison:
• This comparison document focus on the Leaders and
Visionaries of the MDM market as defined by Gartner.
• For other vendors please see Gartner for a full review.
7
8. Solution Strengths and Cautions:
Solution Strengths Cautions
• Options for insourcing and outsourcing of products • Gartner has received feedback from user
and services accommodate a wide range of needs, references regarding poor post sales support.
including purchased/insourced systems, SaaS • The company needs to increase management
hosted on the user site and SaaS hosted as a cloud experience, and is pursuing a plan to hire
service. high-profile managers.
• The management console features a strong • AirWatch has an international presence, but it
dashboard and detailed reporting capabilities. still relies on North America for more than
• Multitenant support is designed in for improved 80% of its revenue.
scaling, with selective isolation for large
installations.
• AirWatch promotes rich policy management in
non-Microsoft e-mail server environments, such as
any Post Office Protocol (POP)/Internet Message
Access Protocol (IMAP)/SMTP mail server, as well
as Lotus Domino, Novell GroupWise and Gmail.
• Revenue, while coming from the low end, has
been ramping up quickly during the past two
years.
8
9. Solution Strengths and Cautions (2):
Solution Strengths Cautions
• Has the best name recognition in MDM and • Users must deploy Good for Enterprise Server
appears frequently on shortlists, although the and transmit end-to-end encrypted data
company's primary product is secure e-mail. through Good's NOC.
• Good's mobile security features, particularly • Strongest security for messaging and Intranet
platform-independent FIPS 140-2 encryption in the access through the Good client and its FIPS
e-mail system, have helped to catalyze entry for 140-2 certified encryption; otherwise, it uses
Apple devices into organizations bound to native encryption or must use third-party
stringent data protection requirements. applications for non-Good applications.
• Good can validate and authorize specific • Good provides its own UI for corporate e-mail
applications before allowing them to connect to a and personal information manager access. In
corporate network. This feature is available even many cases, this causes complaints from
on platforms that do not support blacklisting and users, who must be convinced of the benefits
whitelisting, such as iPhone and iPad. of the added security in exchange for the UI
• Good has a track record for supporting and replacement.
managing both corporate and personal data and • The cost of the Good solution can be
applications and is compatible with both Microsoft relatively high per user seat, compared with
Exchange and Lotus Notes other vendors. Furthermore, the installation
• Extensive help desk features are included, as well and configuration of advanced security
as a user self-service portal. features are complex and require a learning
curve.
• Good does not offer management or
integration for BlackBerry.
9
10. Solution Strengths and Cautions (3):
Solution Strengths Cautions
• McAfee EMM offers MDM managed through • In the year since the Trust Digital acquisition,
its broader ePolicy security suite and is integration of EMM into the McAfee
extending interoperability out to their larger framework has been slower than expected,
product portfolio. even if allowances are made for
• EMM has a strong dashboard and reporting itsunexpected acquisition by Intel.
tools. • The UI isn't as sleek as some other
• Management is compatible with Exchange, competitors, and is less easy to use and
Lotus Notes, Groupwise and Gmail navigate.
• McAfee has a track record of selling new • EMM is not able to automatically
incremental management products and whitelist/blacklist and protect the device if it
features into its large, global ePolicy falls out of compliance, although it can be
Orchestrator (EPO) installed base. Success blocked from further contact using McAfee's
in the adjacent mobile data protection Network Access Control (NAC) policies.
market is a noteworthy case in point. • External media encryption is offered for
• Revenue and competitive presence for iPad, but not for other at-risk platforms,
MDM are 60% in North America, with the such as Symbian and Android.
balance divided mostly between Europe • Pricing per seat is comparatively high,
and the APAC region. sometimes twice that of its competitors,
which reflects a PC valuation mind-set.
10
11. Solution Strengths and Cautions (4):
Solution Strengths Cautions
• MobileIron has rapidly earned high • Being a small startup company, MobileIron
levels of mind share in the MDM could struggle with scaling, especially
market, and appears frequently on globally, as a result of early successful
shortlists. With strong marketing growth. It is a good potential acquisition
capabilities, the company has the target for a larger vendor that wants to
ability to convey the business value acquire a superior management interface.
of MDM. • It does not have its own encryption
• Strong presales and post sales capabilities, must work with what's on-
support and programs are device or through partners, which could
particularly effective at building cause higher costs. Buyers need to
client relationships and reinforcing understand the limits of embedded
credibility. protections on each platform, because these
• The company emphasizes will be the limits to what MobileIron can
comprehensive life cycle manage.
management, including usage • MobileIron offers a physical or virtual
monitoring, cost control, and appliance, but is not releasing a SaaS
application deployment and version offering until 2Q11.
control. It offers strong support for
corporate and personal devices.
• MobileIron has a sleek UI and a full-
featured tool.
• The product has great reporting and
dashboard capabilities.
11
12. Solution Strengths and Cautions (5):
Solution Strengths Cautions
• Afaria offers broad life cycle management • Afaria can be relatively expensive per user seat
benefits and, when combined with Mobile (twice that of competitors); but this is also true
Office, constitutes a comprehensive wireless e- of other vendors with broad functional
mail and mobile application integration platforms. To use features such as e-mail
framework. It constitutes the most mature encryption, buyers may need to invest in
platform among MDM vendors for managed Mobile Office, in addition to Afaria.
software distribution. • Feedback to Gartner indicates that buyers find
• Feature sets for help desk support, application the installation of Afaria to be complex.
and service management, including expense Companies planning a new/first purchase must
management, are well-represented across the plan for a learning curve.
most popular smartphone platforms. • The Afaria UI has been on the market for some
Noncompliant devices can be quarantined. time and needs an update.
• Sybase is one of a few MDM vendors that offers
an embedded VPN in its e-mail client, plus a
sandbox facility to isolate and control
application access to business data and VPN
connections.
• Afaria offers support for an Android application
portal for enterprise application management.
Afaria Advanced Enterprise Security (AES) for
Android, adds more than 80 device
management features on Samsung Android
devices.
12
13. Solution Strengths and Cautions (6):
Solution Strengths Cautions
• Symantec SMM provides strong security • The MDM console isn't as attractive or
capability with lightweight client options. user-friendly as competitors' and could
Integration with other Symantec product use updating. Although it provides life
frameworks is a strategic advantage for cycle management, the console
long-term Symantec customers. emphasizes a focus on security.
• Symantec is emphasizing advanced iOS and • Buyers who want to build a complete
Android features, such as elective e-mail MDM solution may require additional
data wipes, full e-mail access control, Symantec product lines, especially to
selective wipe on application data, complete the security functions.
hardware asset tracking, selective
whitelist/blacklist and application
management, as well as data-roaming
policies.
• Symantec has an outstanding track record
for overall viability and for competitive
sales and support of a wide range of
security services. Their global reseller
network is strong and well-trained.
• Symantec offers an industry-leading central
policy management system for endpoint
devices.
13
14. Solution Strengths and Cautions (7):
Solution Strengths Cautions
• Zenprise has a strong tool UI and • Fair execution and post sales support
functionality. were reported in our survey; however,
• It provides end-to-end security via an marketing is weak, and competitive
embedded VPN and sandbox that can visibility reported by Gartner clients is
control and encrypt application traffic. low.
• It enables Web content filtering and URL • The tool offers weak dashboard and
filtering on mobile devices, which reporting capabilities for supported
differentiates Zenprise from its competitors. devices.
• The product can quarantine noncompliant
devices based on policies, devices,
operating-system versions, and compliance
violations (e.g., user installed blacklisted
applications, user "jail broke" the phone,
user hasn't upgraded the operating system
that addresses security vulnerability).
• Zenprise has a large, installed MDM
customer base.
14
15. Solution Features Detailed Comparison:
Windows Mac Unix Virtual Reseller
Packaging: SAAS Appliance Software Software Software Machine Theming
a a a a a
a a
a
a
a a a a
a a a a
a a a a a
15
16. Solution Features Detailed Comparison (2):
Perpetual Recurring
Licensing: License License
a a
a
a
a ?
a a
a a
16
17. Solution Features Detailed Comparison (3):
Includes DOT Includes Major Includes
Maintenance: Purchase Releases Releases Support
Mandatory a a a
? a a a
Mandatory a a a
Mandatory a a a
Optional a a
Mandatory a a a
17
18. Solution Features Detailed Comparison (4):
Support: 12 x 5 12 x 7 24 x 7
a a a
? a a
a a a
a a
a a a
a a
18
19. Solution Features Detailed Comparison (5):
Locations Location-Specific Role-Based
Scalability: Admins Admins
a a a
?
a a
a
a a a
a a a
a a a
19
20. Solution Features Detailed Comparison (6):
Fault Standalone Fail-Over Load
Tolerance: Server Capability Balancing
a a a
a a a
a a a
a a a
a a a
a a a
20
21. Solution Features Detailed Comparison (7):
Web iOS API Bulk
Enrollment: Portal App Upload
a a a a
a a a a
a a a
a a a a
a a a a
a a a a
21
22. Solution Features Detailed Comparison (8):
Enrollment Active Open Other User
Authentication: Directory Directory LDAP Upload
a a a a
? ? a
a a
a a a a
a a a a
a a a a
22
23. Solution Features Detailed Comparison (9):
Mobileconfig Require Device Exchange WIFI VPN VPN VPN VPN
Passcode Restrictions Account Configuration L2TP CISCO Juniper F5
Features: Seeding
a a a a a a aa
a a a a a aa
a a a a a a a
a a a a a a a
a a a a a a aa
a a a a a a aa
23
24. Solution Features Detailed Comparison (10):
iOS 5 PUSH Encrypted Sandbox Prevent WIFI
Retail Mail Mail iCloud Auto-Join
Features: Apps
a a a a a
a a a
? ? ? ? ?
a a a a a
? ? ? ? ?
? ? ? ? ?
24
25. Solution Features Detailed Comparison (11):
On-Demand Remove Remote Remote Push
Passcode Lock Wipe Text
Features: Message
a a a a
a a a ?
a a a a
a a a a
a a a a
a a a a
25
26. Solution Features Detailed Comparison (12):
Profile Start End Versioning Rollback Triggered
On Date On Date By Inventory
Features:
a a a a a
? ? a ? ?
a
a a
a a a a a
a a a
26
27. Solution Features Detailed Comparison:
App Push Catalog of Recommended VPP
Web In-House Retail Apps Integration
Management: Apps Apps
a a a a
a a a a
a a a a
a a a a
a a a a
a a a a
27
28. Solution Features Detailed Comparison:
Administration Web API or Desktop Alert Alert Alert On
SDK App When No When Forbidden
Console: Response Roaming App
a a a a a
a a
a a
a a a a a
a a a a a
a a a a a
28
29. Solution Features Detailed Comparison (13):
Data App Device Device
Inventory History Status
Export:
a a a
a
a a a
a a a
a a a
29
31. Solution Features Detailed Comparison (15):
Certificate Enterprise Local CA Apply CERTS Apply CERTS Apply CERTS
SCEP with SCEP to Exchange to VPN to WIFI
Features: Integration
a a a a a
a a a a a
a a a a a
a a a a a
a a a a a
31
32. Solution Features Detailed Comparison (16):
LDAP Dynamic Dynamic Dynamic Custom
Policies by Policies by Policies by Message by
Features: LDAP Group LDAP OU LDAP Attribute LDAP Attribute
a a a a
? ? ? ?
a a
a a a a
a a a a
a a a a
32
33. Solution Features Detailed Comparison (17):
Windows Windows Windows Mac Linux
Devices: iOS Android Blackberry Symbian Mobile Phone 7 Desktops Desktops Desktops
a a a a a a
a a a
? a a a ? ?
a a a a a
a a a a a
a a a a a a a
a a a a a a
33
34. Akili’s MDM evaluation, step by step approach:
1. Submit internally a quick mobile survey to have an overview of your
mobile landscape (with the type of device and OS). You will be surprise
by what you learn and you will know what OS and devices you need to
support today.
2. Review your actual set of Security Policies. (it may need to be updated if
it does not take into account the new capabilities of new mobile devices:
mobile apps, camera, GPS…).
3. Request the MDM solution Roadmap from the vendors and see how it
aligned with your IT Roadmap.
4. Make sure you understand how the MDM solution fit in your Enterprise
System Landscape. Create a one slide High Level Architecture.
5. Define the Skills/Training needed to deploy and support the MDM
solution.
34
35. Why Afaria is the best solution for SAP Customer:
1. Proven Worldwide MDM Leader,
2. Track record of supporting all OS and devices as well as quickly
integrating new API,
3. Manages and Secures Windows Laptop,
4. Integration with Sybase Unwired Platform,
5. Leverage SAP Ecosystem and SAP Mobile App Store,
6. Future integration with BI 4 (H1 2012).
35
36. Disclaimer:
• This presentation is based on the author experience gathered thru its
clients work, an internal deployment of Sybase Afaria and the Gartner
report on MDM solutions (April 2011).
• The views express in this document only reflect the author’s point of view
and not the ones from Akili, SAP or Gartner.
• Akili’s is a SAP and Sybase partner.
36
37. Contact Information:
Shiek Shah Jonathan Raspaud
CEO Mobility Practice Lead
kshah@akili.comjraspaud@akili.com
Direct: 214.978.3210 Direct: 214.979.3248
Cell: 214.228.1634 Cell: 469-222-6377
Akili
2201 West Royal Lane, Suite 150
Irving, TX 75063
214.978.3232
www.akili.com
37